• Proceedings of the Korea Institutes of Information Security and Cryptology Conference
• /
• 1995.11a
• /
• pp.115-125
• /
• 1995

본 논문에서는 컴퓨터 시스템에서 침입 감지 시스템을 설계함에 있어서 사용될 수 있는 새로운 방법인 Event Sequence Tracking 방법을 제안하였다. Event Sequence Tracking 방법에서는 컴퓨터 시스템의 공격방법을 크게 두가지로 분류한다. 첫번째는 일련의 시스템 명령어를 이용한 공격방법이고 두번째는 침입자 자신이 만들었거나 다른 사람으로부터 얻은 프로그램을 이용하는 방법이다. 첫번째 공격방법에 대한 감지방법은 시스템을 공격할 때 사용한 일련의 시스템 명령어들을 감사 데이타를 분석하여 찾아내고 이 결과를 기존에 알려진 공격 시나리오들과 비교하여 침입자를 찾아내는 방식이다. 두번째 공격방법에 대한 감지 방법은 보안 관리자가 정해놓은, 시스템에서 일반 사용자가 할 수 없는 행위에 관한 보안 정책에 따라 Key-Event 데이타 베이스를 만들고 여기에 해당하는 event의 집합을 감사 데이타에서 찾아내는 방법이다. Event Sequence Tracking 방법은 Rule-based Penetration Identification 방법의 일종으로서 시스템의 공격방법을 분류하여 컴퓨터 시스템에의 침입을 효과적으로 감지할 수 있다는 것과 rule-base의 생성과 갱신을 함에 있어서 보다 간단하게 할 수 있다는 장점을 갖는다.

• The KIPS Transactions:PartD
• /
• v.16D no.2
• /
• pp.185-190
• /
• 2009

The event sequence of the same type from a set of events having time property can be summarized in one event. But if the event sequence having an interval, It is reasonable to be summarized more than one in independent sub event sequence of each other. In this paper, we suggest a method of temporal data mining that summarizes the interval events based on Allen's interval algebra and finds out interval event association rule from interval events. It provides better knowledge than others by using concept of an independent sub sequence and finding interval event association rules.

• Proceedings of the KSR Conference
• /
• 2006.11b
• /
• pp.1132-1139
• /
• 2006

Railway risk is evaluated by a method of linking event trees and fault trees as the general PSA(Probabilistic Safety Assessment) model for the risk assessment of complex systems. Accident scenarios causing undesirable events are modeled by event trees comprised of several accident sequences. Each branch located in the accident progression of the event tree is modeled by an fault tree or can be represented by some value too simply. We usually evaluate the frequency of the whole sequence by adding them after calculating the frequency of each sequence at a time. However, since there are quite a number of event trees and fault trees in the railway risk assessment model, the number of sequence to evaluate increases and preparation for the risk assessment costs much time all the more. Also, it may induce errors when analysts perform the work of quantification. Therefore, the systematic maintenance and control of event trees and fault trees will be essential for the railway risk assessment. In this paper we introduce an integrated assessment method using one-top model and develop a risk assessment tool for the maintenance and control of the railway risk model.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.14 no.6
• /
• pp.1429-1434
• /
• 2010

Generally, the simulator for mobile device tests automatically an application software after instilling again the event, which is saved in log file according to an event generation sequence, into the application software of device. But, the simulator performance for mobile device can be different according to a extraction layer even if the events are same. And, the sequence of events extracted from an application is changeable in the environment that multiple applications are operated concurrently. Therefore, even though the same applications is executed to the same sequence, the generation sequence of events is revised in accordance with the state of mobile device system, and whether the errors occur according to circumstances or not. This kind of application software error is very difficult to perform a debugging operation. In this paper, the execution state of various applications is verifiable through the re-editing of events after analyzing the events which is generated in application, kernel, middleware layer, and the event arrange/editor is designed and implemented to understand efficiently the influence on application, kernel, and middleware layer for events.

• Nuclear Engineering and Technology
• /
• v.31 no.1
• /
• pp.68-79
• /
• 1999

The YGN Units 3&4 plant conditions during shutdown operation were reviewed to identify the possible event scenarios following the loss of shutdown cooling (SDC) event. For the five cases of typical reactor coolant system (RCS) configurations under the worst event sequence, such as unavailable secondary cooling and no RCS inventory makeup, the thermal hydraulic analyses were performed using the RELAP5/MOD3.2 code to investigate the plant behavior following the event. The thermal hydraulic analyses include the estimation of time to boil, time to core uncovery, and time to core heat up to determine the containment closure time to prevent the uncontrolled release of fission products to atmosphere. The result indicates that the containment closure is recommended to be achieved within 42 minutes after the loss of SDC for the steam generator (SG) inlet plenum manway open case or the large cold leg open case under the worst event sequence. The containment closure time is significantly dependent on the elevation and size of the opening and the SG secondary water level condition. It is also found that the containment closure needs to be initiated before the boiling time to ensure the survivability of the workers in the containment. These results will provide useful information to operators to cope with the loss of SDC event.

• Proceedings of the Korea Society for Simulation Conference
• /
• 2003.11a
• /
• pp.51-57
• /
• 2003

In operating distributed systems, proactive management is one of the major concerns for better quality of service and future capacity planning. In order to handle this management problem effectively, it is necessary to analyze performances of the distributed system and events generated by components in the system. This paper provides a rule-based event parsing engine for proactive management. Our event parsing engine uses object hooking-based and event-token approaches. The object hooking-based approach prepares new conditions and actions in Java classes and allows dynamically exchange them as hook objects in run time. The event-token approach allows the event parsing engine consider a proper sequence and relationship among events as an event token to trigger an action. We analyze the performance of our event parsing engine with two different implementations of rule structure; one is table-based and the other is tree-based.

• Journal of the Korean Institute of Illuminating and Electrical Installation Engineers
• /
• v.23 no.12
• /
• pp.224-232
• /
• 2009

Power plant start-up is a complicate process involving hundreds of operations that should be performed either automatically or manually. Several major operations should be proceeded in parallel and each major operation is again broken down into detailed operations that must be carried out in a strict sequence. Even though most of the operations are automated, still substantial portions of the operations are carried out manually and the operational status should be monitored by the crew members, which are quite stressful tasks to be performed in real time. In this paper, a data structure called an Event Sequence Monitoring Graph(ESMG) is proposed for monitoring a sequence of events involved in the power plant start-up process. The ESMG is currently being applied to a thermal power plant with a rated output of 500MW. An application example is shown with the boiler feed water pump system start-up process, which exhibits a good potential for future applications.

• KIISE Transactions on Computing Practices
• /
• v.24 no.3
• /
• pp.138-144
• /
• 2018

A video is a vivid medium similar to human's visual-linguistic experiences, since it can inculcate a sequence of situations, actions or dialogues that can be told as a story. In this study, we propose story learning/regeneration frameworks from videos with successive event order supervision for contextual coherence. The supervision induces each episode to have a form of trajectory in the latent space, which constructs a composite representation of ordering and semantics. In this study, we incorporated the use of kids videos as a training data. Some of the advantages associated with the kids videos include omnibus style, simple/explicit storyline in short, chronological narrative order, and relatively limited number of characters and spatial environments. We build the encoder-decoder structure with successive event order embedding, and train bi-directional LSTMs as sequence models considering multi-step sequence prediction. Using a series of approximately 200 episodes of kids videos named 'Pororo the Little Penguin', we give empirical results for story regeneration tasks and SEOE. In addition, each episode shows a trajectory-like shape on the latent space of the model, which gives the geometric information for the sequence models.

• The Transactions of the Korea Information Processing Society
• /
• v.4 no.7
• /
• pp.1821-1841
• /
• 1997

This paper presents an automated protocol conformance test sequence generation based on formal methods for LOTOS specification by using and applying many existing related algorithms and technique, such as the testing framework, Rural Chinese Postman tour concepts. We use the state-transition graphs obtained from LOTOS specifications by means of the CAESAR tool. This tool compiles a specification written in LOTOS into an extended Petri net, from which a transition graph of a event finite-state machine(EvFSM) including data is generated. A new characterizing sequence(CS), called Unique Event sequence(UE sequence) is defined. An UE sequence for a state is a sequence of accepted gate events that is unique for this state. Some experiences about UE sequence, partial UE sequence and signature are also explained. These sequences are combined with the concept of the Rural Chinese Postman Tour to obtain an optimal test sequence which is a minimum cost tour of the reference transition graph of the EvFSM. This paper also presents a fault coverage estimation experience of an automated method for optimized test sequences generation and the translation of the test sequence obtained by using our tool to TTCN notation are also given. A prototype of the proposed framework has been built with special attention to real application in order to generated the executable test cases in an automatic way. This formal method on conformance testing can be applied to the protocols related to IN, PCS and ATM for the purpose of verifying the correctness of implementation with respect to the given specification.

• Journal of Ecology and Environment
• /
• v.45 no.1
• /
• pp.10-16
• /
• 2021

Background: Ranavirus is an emerging infectious disease which has been linked to mass mortality events in various amphibian species. In this study, we document the first mass mortality event of an adult population of Dybowski's brown frogs (Rana dybowskii), in 2017, within a mountain valley in South Korea. Results: We confirmed the presence of ranavirus from all collected frogs (n = 22) via PCR and obtained the 500 bp major capsid protein (MCP) sequence from 13 individuals. The identified MCP sequence highly resembled Frog virus 3 (FV3) and was the same haplotype of a previously identified viral sequence collected from Huanren brown frog (R. huanrenensis) tadpoles in South Korea. Human habitat alteration, by recent erosion control works, may be partially responsible for this mass mortality event. Conclusion: We document the first mass mortality event in a wild Korean population of R. dybowskii. We also suggest, to determine if ranavirus infection is a threat to amphibians, government officials and researchers should develop continuous, country-wide, ranavirus monitoring programs of Korean amphibian populations.